NNSA CIO Implementation Plan for IT 2012-2016 - National Nuclear ...
NNSA CIO Implementation Plan for IT 2012-2016 - National Nuclear ...
NNSA CIO Implementation Plan for IT 2012-2016 - National Nuclear ...
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
FOCUS AREA 3: PROTECTING OUR FUTURE<br />
Strategic Goal 3-1: Invest in Cutting Edge Research on<br />
Cyber Security Defenses<br />
In the current operating environment, research is primarily<br />
funded by external national security related agencies and is<br />
not shared within the current operating environment.<br />
Through the Cyber Sciences Laboratory (CSL), <strong>NNSA</strong> will<br />
make investments in game changing cyber defenses through<br />
the application of research and development and scientific<br />
discovery processes. Promising research will be funneled<br />
back through JC3 <strong>for</strong> operationalization.<br />
Strategic Goal 3-1 Objectives:<br />
Invest in game changing technologies that<br />
will fundamentally improve <strong>NNSA</strong> cyber<br />
security defenses.<br />
Serve as the pre-eminent cyber security<br />
defense laboratory in the U.S. government<br />
and leverage unique <strong>NNSA</strong> capabilities to<br />
improve cyber security defenses across<br />
multiple cabinet level Agencies.<br />
Develop a virtual, cloud-based cyber range<br />
capability <strong>for</strong> advanced simulation and<br />
testing.<br />
Strategic Goal 3-2: Apply Risk-Based Budgeting<br />
Processes <strong>for</strong> Cyber Security<br />
As the capabilities of the Advanced Persistent Threat (APT)<br />
continue to increase, it is imperative that <strong>NNSA</strong> optimize the<br />
cyber security budget using a risk-based process.<br />
Development of a common baseline, coupled with<br />
deployment of the RMF at each site, should ensure that the<br />
highest priority initiatives in cyber security are effectively<br />
funded.<br />
Strategic Goal 3-2 Objectives:<br />
Develop a baseline set of metrics and<br />
per<strong>for</strong>mance expectations <strong>for</strong> <strong>NNSA</strong> cyber<br />
security programs.<br />
Leverage the RMF at each site to identify<br />
issues needing additional funding beyond<br />
the baseline capabilities.<br />
Ensure that each additional dollar invested<br />
in cyber security programs maximizes risk<br />
reduction <strong>for</strong> sensitive <strong>NNSA</strong> in<strong>for</strong>mation.<br />
9